DEV Community

Discussion on: Homographs, Attack!

cybolic profile image
Christian Dannie Storgaard

Sure, it shows it on links, but what about a redirect during a checkout process? If an injected script could change a redirect to paypal to actually go to a homograph'ed domain instead, it would be quite hard to spot.